Investigating and Assessing Incidents Reported by a Vendor

What would you do if one of your third-party vendors compromised your patients’ health information? Not your problem, right? Wrong. Even though the third party potentially breached your patients’ sensitive information, you still need to have a process in place to investigate and assess those incidents. At a minimum, you are held liable if the proper reporting and notification process does not happen.

In this webinar, privacy expert David Holtzman describes the actions to take if your business associate (BA) compromises your patients’ info, even if your Business Associate Agreement says that the BA will handle the breach notification. Going through some real-world scenarios, he will also identify best practices on how to manage vendors and will take attendees through the necessary steps to ensure the incident is handled appropriately.